A bug in Kgpg's key generation affects all secret keys generated through Kgpg's wizard. (Bug does not affect keys created in console/expert mode). All keys created through the wizard have an empty passphrase, which means that if someone has access to your computer and can read your secret key, he/she can decrypt your files whitout the need of a passphrase.

SOLUTION

It is recommended that all Gentoo Linux users who are running app-crypt/kgpg-0.8.2 and earlier update their systems as follows: